Dynamic code execution detected.
- Code
- suspicious.dynamic_code_execution
- Location
- src/brightdata-browser-tools.ts:101
- Evidence
$eval(selector: string, fn: (element: Element) => unknown): Promise<unknown>;
Security audit
Security checks across malware telemetry and agentic risk
This appears to be a coherent Bright Data web-data plugin, but it can bypass anti-bot protections, automate websites through residential proxies, and change your Bright Data account setup.
Use this plugin only if you deliberately want Bright Data-powered scraping and browser automation. Before installing, consider legal/terms-of-service limits, use the least-privileged Bright Data token available, watch for automatic zone creation and costs, and require manual confirmation before the agent clicks, types, submits forms, or accesses sensitive sites.
VirusTotal engine telemetry is currently stale for this artifact.
Detected: suspicious.dynamic_code_execution, suspicious.exposed_secret_literal
$eval(selector: string, fn: (element: Element) => unknown): Promise<unknown>;
const apiToken = [REDACTED](params.pluginConfig);
const apiToken = [REDACTED](params.pluginConfig);